Required permissions

You need the following permissions to deploy a custom AMI with Terraform:

assume the ParallelCluster API role, which is in charge of interacting with the ParallelCluster API
describe the AWS CloudFormation stack of the ParallelCluster API, to verify it exists and retrieve its parameters and outputs


{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": "sts:AssumeRole",
            "Resource": "arn:PARTITION:iam::ACCOUNT:role/PCAPIUserRole-*",
            "Effect": "Allow",
            "Sid": "AssumePCAPIUserRole"
        },
        {
            "Action": [
                "cloudformation:DescribeStacks"
            ],
            "Resource": "arn:PARTITION:cloudformation:REGION:ACCOUNT:stack/*",
            "Effect": "Allow",
            "Sid": "CloudFormation"
        }
    ]
}

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Deploy the AMI

AWS ParallelCluster UI Integration with Identity Center